In the Claims 

Claims pending 

• At time of the Action: Claims 1-46 

• After this Response: Claims 1-16 
Canceled or Withdrawn claims: 17-46 
Amended claims: None 

New claims: None 

1. (Original) An apparatus comprising: 

virtual machine means, in a managed code portion, for operating 
first and second assemblies in the managed code portion; 

means for making a call for access by the first assembly to the 
second assembly; and 

means, based upon an identification (ID) for at least one of the first 
and second assemblies, for determining access privileges of the first assembly to 
the second assembly. 

2. (Original) The apparatus as defined in Claim 1, wherein the ID is a user 

ID. 

3. (Original) The apparatus as defined in Claim 1, further comprising: 

execution engine means, in a native code portion, for the virtual 
machine means; and 

means, in a native code portion, for providing an operating system; 



lee & hayes, pllc Page 2 of. 16 

RESPONSE TO OFFICE ACTION DATED NOVEMBER 30, 2007 



ATTORNEY DOCKET NO. MS1-1822US 
Serial No. 10/771,653 



4. (Original) The apparatus as defined in Claim 1, wherein the means for 
determining access privileges further comprises: 

means for preventing the access of the first assembly to the second 
assembly when the determination based upon the ID for at least one of the first 
and second assemblies is unfavorable based upon predetermined criteria for the 
respective IDs. 

5. (Original) The apparatus as defined in Claim 1, wherein the means for 
determining access privileges further comprises: 

means for preventing the access of the first assembly to the second 
assembly when the ID for the first assembly does not match the ID for the second 
assembly based upon a predetermined match criteria for the respective IDs. 

6. (Original) The apparatus as defined in Claim 1, wherein the means for 
determining access privileges further comprises: 

means for preventing the access of the first assembly to the second 
assembly when the first assembly is in a first application domain and the second 
assembly is in a second application domain, and the first and second application 
domains do not match based upon a predetermined match criteria for application 
domains. 

7. (Original) The apparatus as defined in Claim 3, wherein: 
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the means for determining access privileges further comprises means 
for permitting the access of the first assembly to the second assembly when the ID 
for the first assembly matches the ID for the second assembly based upon a 
predetermined match criteria for the respective IDs; and 
the apparatus further comprises: 

means for compiling at least one of the first and second 
assemblies from an intermediate language code and metadata into native 
code; 

means for loading the native code with a Common Language 
Runtime (CLR) loader in the native code portion to load the compiled 
native code; 
and 

means for executing the compiled native code in the native 
code portion, wherein the first assembly accesses the second assembly. 

8. (Original) The apparatus as defined in Claim 1, wherein the means for 
determining access privileges further comprises: 

means for permitting the access of the first assembly to the second 
assembly when a previous said access had been permitted. 

9. (Original) The apparatus as defined in Claim 8 , wherein the previous 
said access had been permitted following a prior said determination that was 
favorable based upon a predetermined comparison criteria for the respective IDs. 
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10. (Original) The apparatus as defined in Claim 1, further comprises: 

means for compiling at least one of the first and second assemblies 
into native code; 

accuracy means, prior to the means for determining access 
privileges, for determining whether the ID is accurate for the first and second 
assemblies; 

means, upon the determination by the accuracy means that either of 
said IDs is inaccurate, for: 

permitting the means for compiling to compile at least one of 
the first and second assemblies into native code; and 

delaying the means for determining access privileges until the 
ID is accurate for the first and second assemblies. 

1 1 . (Original) The apparatus as defined in Claim 10, wherein the accuracy 
means determines that the ID is accurate for the first and second assemblies at a 
runtime for the native code. 

12. (Original) The apparatus as defined in Claim 10, wherein the means 
for delaying the means for determining access privileges halts the delay at a 
runtime for the native code. 



13. (Original) The apparatus as defined in Claim 1, wherein the managed 
code portion further comprises one or more files associated with user code that, 
when compiled into an intermediate language code and metadata generated by a 
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language compiler, are represented by the first and second assemblies in respective 
application domains. 



14. (Original) The apparatus as defined in Claim 3, wherein the execution 
engine means in the native code portion further comprises a compiler to compile 
each said assembly into native code for execution by the native code portion. 

15. (Original) The apparatus as defined in Claim 3, wherein the execution 
engine means in the native code portion further comprises: 

a Just In Time (JIT) compiler to compile each said assembly into 
native code; and 

a CLR loader to load the compiled native code for execution by the 
native code portion. 

16. (Original) The apparatus as defined in Claim 3, further comprising: 

means, in the native code portion, for forming a response to the call; 

and 

means for returning the response to the first assembly in the 
managed code portion. 

17. (Withdrawn) A method comprising: 

calling for a first assembly in a managed code portion to have access 
to a second assembly in the managed code portion; 
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preventing the access by the first assembly to the second assembly 
upon intercepting the call; 

verifying, based upon an ID for at least one of the first and second 
assemblies, that the first assembly is privileged to access the second assembly; 

compiling at least one of the first and second assemblies from an 
intermediate language code and metadata into native code; 

loading the native code with a CLR loader in a native code portion 
that includes an operating system; and 

executing the compiled native code in the native code portion, 
wherein the first assembly accesses the second assembly. 

18. (Withdrawn) The method as defined in Claim 17, wherein the ID is a 
user ID. 

19. (Withdrawn) The method as defined in Claim 17, wherein the 
managed code portion further comprises one or more files associated with user 
code that, when compiled into an intermediate language code and metadata 
generated by a language compiler, are represented by the first and second 
assemblies in respective application domains. 



20. (Withdrawn) The method as defined in Claim 17, wherein: 

the compiling is performed by a JIT compiler; and 

the native code portion includes a CLR loader to load the compiled 

native code. 
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21. (Withdrawn) The method as defined in Claim 17, wherein the 
verifying verifies that the first assembly is privileged to access the second 
assembly when the first assembly has previously been privileged to access the 
second assembly. 

22. (Withdrawn) The method as defined in Claim 21 , wherein the first 
assembly has previously been privileged to access the second assembly following 
a prior said verifying, based upon the ID for at least one of the first and second 
assemblies, that the first assembly is privileged to access the second assembly. 

23. (Withdrawn) The method as defined in Claim 17, further comprising: 

forming a response to the call in the native code portion; and 
returning the response to the first assembly in the managed code 

portion. 

24. (Withdrawn) A computer readable medium including machine 
readable instructions for implementing the method as defined in claim 17. 

25. (Withdrawn) A method comprising: 

calling for a first, assembly in a managed code portion to access to a 
second assembly in the managed code portion; 
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determining whether respective IDs associated with the first and 
second assemblies are accurate; 

when the determining determines an inaccuracy: 

compiling at least one of the first and second assemblies from 
an intermediate language code and metadata into native code; and 

when the respective IDs associated with the first and second 
assemblies are accurate: 

verifying, based upon the ID for at least one of the first 
and second assemblies, whether the first assembly is privileged to 
access the second assembly. 

26. (Withdrawn) The method as defined in Claim 25, wherein each said 
ID is a user ID. 

27. (Withdrawn) The method as defined in Claim 25, wherein when the 
verifying verifies that the first assembly is privileged to access the second 
assembly: 

loading the native code with a CLR loader in a native code portion 
that includes an operating system; and 

executing the compiled native code in the native code portion, 
wherein the first assembly accesses the second assembly. 
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28. (Withdrawn) The method as defined in Claim 25, wherein the 
determining determines that the respective IDs associated with the first and second 
assemblies are accurate at a runtime for the native code. 



29. (Withdrawn) The method as defined in Claim 25, wherein the 
managed code portion further comprises one or more files associated with user 
code that, when compiled into an intermediate language code and metadata 
generated by a language compiler, are represented by the first and second 
assemblies in respective application domains. 

30. (Withdrawn) The method as defined in Claim 25, wherein: 

the compiling is performed by a JIT compiler; and 

the native code portion includes a CLR loader to load the compiled 

native code 

3 1 . (Withdrawn) The method as defined in Claim 25, wherein the 
verifying further comprises permitting the access of the first assembly to the 
second assembly when the ID for the first assembly matches the ID for the second 
assembly based upon a predetermined match criteria for the respective IDs. 

32. (Withdrawn) The method as defined in Claim 25, wherein when the 
verifying verifies that the first assembly is not privileged to access the second 
assembly: 
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upon the intercepting of the call: 

preventing the access by the first assembly to the second 

assembly; and 

outputting an exception. 

33 . (Withdrawn) A computer readable medium including machine 
readable instructions for implementing the method as defined in claim 25. 



34. (Withdrawn) An server comprising: 

a managed code portion including: 

one or more assemblies in respective application domains; 

and 

a virtual machine; 
a native code portion including: 

an execution engine for the virtual machine; and 

an operating system under the execution engine; 
logic configured to: 

register each said assembly as a server object; 

intercept a call for access by a first said server object to a 
second said server object; and 

provide access control, based upon an ID for at least one of 
the first and second said server objects, from the first said server object to 
the second said server object. 
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35. (Withdrawn) The server as defined in Claim 34, wherein the logic is 
further configured to receive intermediate language code and metadata generated 
by a language compiler to form the one or more assemblies in respective 
application domains. 

36. (Withdrawn) The server as defined in Claim 35 5 wherein the 
intermediate language code and metadata generated by the language compiler 
from one or more files each having a file type and being associated with user code. 

37. (Withdrawn) The server as defined in Claim 36, wherein: 

the one or more files comprise a database management system for an 
object-oriented database; and 

the server further comprises a network interface for communications 
with an object-oriented database and with a plurality of clients. 

38. (Withdrawn) The server as defined in Claim 34, wherein the execution 
engine further comprises: 

a JIT compiler to compile said assemblies into native code; and 
a CLR loader to load the compiled native code for execution in the 
native code portion. 

39. (Withdrawn) The server as defined in Claim 38, wherein the access 
control further comprises: 
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determining whether respective IDs associated with the first and 
second server objects are accurate; 

when the determining determines an inaccuracy: 

compiling, with the JIT complier, at least one of the first and 
second server objects from an intermediate language code and metadata 
into native code; and 

when the respective IDs associated with the first and second 
server objects are accurate: 

verifying, based upon the ID for at least one of the first 
and second server objects, whether the first server object is 
privileged to access the second server object. 

40. (Withdrawn) The server as defined in Claim 39, wherein each said ID 
is a user ID. 

41. (Withdrawn) The server as defined in Claim 39, wherein when the 
verifying verifies that the first server object is privileged to access the second 
server object: 

loading, with the CLR loader, the native code compiled by the JIT 

compiler; and 

executing the native code compiled by the JIT compiler in the native 
code portion, whereby the first server object accesses the second server object. 
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42. (Withdrawn) The server as defined in Claim 39, wherein the 
determining determines that the respective IDs associated with the first and second 
server objects are accurate at a runtime for the native code. 

43. (Withdrawn) The server as defined in Claim 39, wherein when the 
verifying verifies that the first server object is privileged to access the second 
server object when the ID for the first server object matches the ID for the second 
server object based upon a predetermined match criteria for the respective IDs. 

44. (Withdrawn) The server as defined in Claim 39, wherein when the 
verifying does not verify that the first server object is privileged to access the 
second server object: 

upon the intercepting of the call: 

the access by the first server object to the second server object 
is prevented; and 

an exception is output. 

45. (Withdrawn) An server comprising logic for providing an identity 
based security access permission model that maps access rights for a specific 
database to access rights for a server object, wherein: 

one or more said server objects are registered assemblies of the 

server; and 
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the server compiles the registered assemblies in managed code into 
native code that is executed by a common language runtime via the server's 
operating system.. 

46. (Withdrawn) The server as defined in Claim 45, wherein when the 
identity based security access permission model is a user identity based security 
access permission model. 
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